Quote:
Originally Posted by c0wb0y
That's why tcpdump was suggested so you can tell if anything is hitting your CentOS server from outside. Gateway is irrelevant at this stage as nodes are on the same subnet.
Can you please post output of:
tcpdump output
iptables -nvL
getenforce
ss -4tlna
|
tcpdump output:
[root@localhost ~]# tcpdump -tni eno16777736
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on eno16777736, link-type EN10MB (Ethernet), capture size 65535 bytes
IP 192.168.2.128.34779 > 5.160.24.41.ntp: NTPv4, Client, length 48
ARP, Request who-has 192.168.2.128 tell 192.168.2.2, length 46
ARP, Reply 192.168.2.128 is-at 00:0c:29:89:c9:ea, length 28
IP 5.160.24.41.ntp > 192.168.2.128.34779: NTPv4, Server, length 48
IP 192.168.2.128.60982 > 46.209.15.97.ntp: NTPv4, Client, length 48
IP 46.209.15.97.ntp > 192.168.2.128.60982: NTPv4, Server, length 48
IP 192.168.2.128.53133 > 194.225.50.25.ntp: NTPv4, Client, length 48
IP 194.225.50.25.ntp > 192.168.2.128.53133: NTPv4, Server, length 48
IP 192.168.2.128.42619 > 5.160.24.33.ntp: NTPv4, Client, length 48
IP 5.160.24.33.ntp > 192.168.2.128.42619: NTPv4, Server, length 48
ARP, Request who-has 192.168.2.2 tell 192.168.2.128, length 28
ARP, Reply 192.168.2.2 is-at 00:50:56:f3:8d:b5, length 46
IP 192.168.2.128.46304 > 5.160.24.41.ntp: NTPv4, Client, length 48
IP 5.160.24.41.ntp > 192.168.2.128.46304: NTPv4, Server, length 48
IP 192.168.2.128.47712 > 46.209.15.97.ntp: NTPv4, Client, length 48
IP 46.209.15.97.ntp > 192.168.2.128.47712: NTPv4, Server, length 48
IP 192.168.2.128.57427 > 194.225.50.25.ntp: NTPv4, Client, length 48
IP 194.225.50.25.ntp > 192.168.2.128.57427: NTPv4, Server, length 48
ARP, Request who-has 192.168.2.2 tell 192.168.2.128, length 28
ARP, Reply 192.168.2.2 is-at 00:50:56:f3:8d:b5, length 46
ss output:
ss output:
[root@localhost ~]# man ss
[root@localhost ~]# ss -4tlna
State Recv-Q Send-Q
Local Address:Port Peer Address:Port
LISTEN 0 5
192.168.122.1:53 *:*
LISTEN 0 128
*:22 *:*
LISTEN 0 128
127.0.0.1:631 *:*
LISTEN 0 100
127.0.0.1:25 *:*